Skip to content

Call out explicitly that we don't provide option to disable MFA #1221

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 3 commits into from
Apr 24, 2025
Merged

Call out explicitly that we don't provide option to disable MFA #1221

Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
89a4ec8
Update multifactor-authentication.md
kunisen Apr 22, 2025
0e672d1
Reword the intro sentence with stronger language for clarity and upda…
florent-leborgne Apr 24, 2025
972e79b
Merge branch 'main' into kunisen-docpr-sdhcp9470
florent-leborgne Apr 24, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 5 additions & 9 deletions cloud-account/multifactor-authentication.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,23 +8,19 @@ applies:

# Multifactor authentication [ec-account-security-mfa]

If you use a password-based login, Elastic requires you to enable multifactor authentication (MFA) for added security on your {{ecloud}} account.

You can choose from the following methods:
Multifactor authentication (MFA) is **mandatory** when you log in to {{ecloud}} using a standard email/password combination, and can't be turned off. It helps protecting your account by adding an extra identity verification step when you log in. You can choose and define the MFA method to use based on your preference:

* Set up an **authenticator app** such as Google Authenticator, Microsoft Authenticator, or Okta Verify. These apps generate a time-based one-time password (TOTP) that you enter along with your password when you log in.
* Authenticate using a **hardware security key or biometric data**, such as a YubiKey or a fingerprint reader.
* Receive a verification code through **email**. You enter this code along with your password when you log in.

Elastic recommends that you enable multiple methods so that you can still access your account if you lose access to one method.

If you use only a Google or Microsoft account to log in, then you can’t configure MFA in {{ecloud}}. You can check and manage your multifactor authentication options in your Google or Microsoft account security settings.

::::{note}
You can no longer configure SMS as a multifactor authentication method. If you already use SMS for multifactor authentication, then you can continue using it. You’ll be prompted to switch to a new MFA method in the future.

You can no longer configure SMS as a multifactor authentication method.
::::

Elastic recommends that you enable multiple methods so that you can still access your account if you lose access to one method.

If you use only a Google or Microsoft account to log in, then you can’t configure MFA in {{ecloud}}. You can check and manage your multifactor authentication options in your Google or Microsoft account security settings.

## Configure an authenticator app [ec-account-security-mfa-authenticator]

Expand Down
Loading